6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
7.4 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
A vulnerability in the API interface of the Grafana web-based data representation tool is related to insecure privilege management.
privilege management. Exploitation of the vulnerability could allow an attacker acting remotely,
gain unauthorized access to restricted functions
A vulnerability in the Grafana web presentation tool is related to authorization bypass. Exploitation
the vulnerability could allow an attacker acting remotely to gain unauthorized access to limited functions.
restricted functions
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
7.4 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%